• Disposable in @dandi/core
• PgDbTransactionClient in @dandi/data-pg

• create @dandi/model-schema package
• use model metadata to generate JSON schema
• create service to provide access to model schemas

• Allow configurations for each log level, plus default config
• function to format entire log entry, or
  • granular configuration
    • timestamp format - function or Luxon format name/string
    • context tag format - function, tokenized string, prefix/suffix
    • args - prefix/suffix
• Allow filtering by log level
• Write tests

• allow overrides for actions required for beginning, committing, and rolling back transaction
• remaining behavior is SQL implementation agnostic

dependent on #23, #36

• use model schema with fastify's JSON serializer

Currently, the framework does differentiate between pipeline results with errors and those without - it will attempt to render the response regardless. This is fine for data responses, as the appropriate error information will be rendered in the format requested by the client, however, it doesn't work as well when using views, since it will attempt to render the requested view, which will often fail due to missing required data.

• add configuration option for default error view
• add configuration option for per-status code error views
• update MvcViewRenderer to check for errors in the HttpPipelineResult, and use error rendering if errors are present
• render a per-status code error view if one is configured for the error
• use the default error view if there is no status-code-specific view configured
• render a plain text representation of the error if there are no error views configured
• show the RequestError.internalMessage (if defined) only for non-production environments
• show the stack trace only for non-production environments
• Also include innerError data

Angular uses a customized wrapper around tsc to extract type data and allow it to be used at runtime. Dandi would benefit from the same functionality.

• allow Container to infer injected types from type data
• make the injection token parameter of @Inject optional

• options handler - check against available HTTP methods
• CORS - host whitelist
• CORS - header whitelist
• CORS - method whitelist
• CORS - host match function
• Finalize cross-origin request detection
• CorsHandler - also consider CORS request headers (e.g. access-control-request-headers)
• Only include CORS-enabled sibling methods for allowMethods
  • Only include sibling methods whose CORS configuration would allow a request, given the headers, etc
• MVC - Make sure route-level cors config overrides pipeline config
  • Allow headers should always include default allowed headers
• do not emit CORS headers on non-cross-origin requests
• make sure it works with aws-lambda (may need to add providers)
• tests!

• Disposable.useAsync accepts a promise for the source object and resolves it before invoking the usage function

The existing implementation using of @ListRelation and @Relation does not work when two resources have interdependent relations (e.g. a parent with an array of children, and the children with a relation to the parent).

A solution would be to allow offloading the decoration of relations to a class defined in a separate file. The @Relations(forModel) decorator links the relation data defined in the "relations" class to the specified model.

Example:

// parent.resource.ts
export class ParentResource {
  // decorating without referencing ChildResource acts as a placeholder, and
  // prevents a circular reference at runtime
  @ListRelation() 
  public children: ChildResource[];
}

// parent.resource.relations.ts
@Relations(ParentResource)
export class ParentResourceRelations {
  // fills in the placeholder with the correct class reference
  @ListRelation(ChildResource)
  children: ChildResource[];
}

// child.resource.ts
export class ChildResource {
  // decorating without referencing ParentResource acts as a placeholder, and
  // prevents a circular reference at runtime
  @Relation()
  public parent: ParentResource;
}

// child.resource.relations.ts
@Relations(ChildResource)
export class ChildResourceRelations {
  // fills in the placeholder with the correct class reference
  @Relation(ParentResource)
  public parent: ParentResource;
}

Questions

• Doesn't this still has circular dependencies?
  Technically yes, but since the circularity is only referenced for typing (e.g. we aren't referencing the circularly referenced types as classes/values), and not at runtime, it still works.

• How do the "relations" files get referenced naturally? As it is, they'll need to get explicitly imported somewhere just for their side effects, which is not ideal.

Option A:

parent.resource.model.ts // export class ParentResource
parent.resource.relations.ts // export class ResourceResourceRelations
parent.resource.ts // export * from './parent.resource.model'; export * from './parent.resource.relations'

Caveat: "relations" must import directly from the "model" file, all other references must import from "resource" file

Add a validator for Angular that maps an input/ngModel binding to @dandi/model validation information.

new package: @dandi/ng-forms

• ConsoleLogListener formatting
• ConsoleLogListener high water mark spacing feature
• Logger API
• PrettyColorsLogging
• using LoggerFixture for testing Logger usage

fs-extra is only used by FileSystemScanner, but prevents @dandi/core and anything dependent on it from being used in the browser.

• Create new @dandi/core-node package
• Move FileSystemScanner into @dandi/core-node, remove fs-extra dependency

It'd be good to have an automated check that changes to the library don't break the examples

• migrate all 3rd party integration packages
• contrib packages are independently versioned
• follows same naming convention (e.g. @dandi/mvc-express -> @dandi-contrib/mvc-express)

• add SNS event transformer
• add SNS event responder
• add SNS module

• Support API Gateway events
• Complete unit test coverage

• adds rxjs
• LogStream is an Observable of log items
• Logger becomes an implementation that broadcasts to LogStream
• LogListeners subscribe to LogStream
• Remove NoopLogger
• ConsoleLogger becomes ConsoleLogListener

• add @Accept() decorator, which can take one or more MIME type strings as input
• @Accept() can be applied at controller or method level
• With no @Accept(), any configured renderer will be used
• With @Accept(), content type rendering will be limited to the route's specified content types

Depends on #24

• rename @dandi/core to @dandi/common
• rename @dandi/di-core to @dandi-core

• add @dandi/mvc-view
• add ViewEngine interface and injection token
• add ViewResult class
• add RenderOptions interface
• add injectable view(path: string, options: RenderOptions) => ViewResult method
• add ViewEngine implementation for pug in @dandi-contrib/mvc-view-pug
• add ViewEngine implementation for ejs @dandi-contrib/mvc-view-ejs

Add test coverage for the following items:

• PgDbQueryableBase
• PgDbClient
• PgDbPool
• PgDbPoolClient
• PgDbTransactionClient
• PgDbConfig

• add options parameter including disableRequired to @RequestBody() decorator
• when disableRequired is set, don't fail on missing required properties

add @dandi/mvc-autodocs package

• add view renderer that will respond to text/html requests

Since "invalid registration target" can mean different things, including a bad/missing default value or configuration, it can be very difficult to track down the actual problem, requiring debugging in @dandi/core itself, add tooling to make it easier to narrow down the source of the bad target.

• include the reason the target is invalid in the error message (e.g. target was null/undefined or not one of the accepted registration objects)
• expand and standardize on "module" - the array of types provided as defaults by several packages. Add a standard helper for creating one, include a Symbol property that identifies its source and what it is
• when available, include path of module(s) - including nested modules - in the error messaging

// @dandi/common
export class DandiModule extends Array<any> {
  
  public static readonly package = Symbol.for('@dandi/common#DandiModule.package');
  public static readonly name = Symbol.for('@dandi/common#DandiModule.Name');

  constructor(package: string, name: string, ...providers: any[]) {
    super(providers);
    this[DandiModulePackage] = package;
    this[DandiModuleName] = name;
  }
  providers[DandiModulePackage] = package;
  providers[DandiModuleName] = name;
}

// @dandi/some-pkg
export const SomePkgModule = dandiModule(SomePkgService, AnotherPkgService];

• add DynamoDB Stream event transformer
• add DynamoDB Stream event responder
• add DynamoDB Stream module

• configuration/connection
• transactions
• SELECT expansion for models

dependent on #34

features TBD

Add test coverage for the following items:

• DecoratorRouteGenerator
• mergeAuthorization in authorization.metadata.ts
• authorizedDecorator
• DefaultRouteInitializer
• requestBodyProvider in request.body.decorator.ts
• getCorsConfig

The current validation scheme actually does two jobs:

• "reconstituting" a model from a "lesser" state
• "lesser" meaning plain JSON, a database representation, etc
• converts JS primitives into Dandi types (e.g. Uuid, Url, etc)
• converts complex objects into classes as determined by decorator

The goals of this change are:

• decouple the "reconstitution" step from the validation
• support for alternate discovery of property values (e.g. getting embedded values from HAL resources from the _embedded property)

This most likely means moving the "reconstitution" logic into @dandi/model, which will not be a problem after #12. Alternatively, use a new package (e.g. @dandi/model-builder)

• ControllerResults - generally data only (remove JsonResult)
• Renderers - can be registered at the application-level (json/xml/etc), or at the route-level (views - html).
• Switch output formatting based on Accept header
• Default to JSON when Accept is ambiguous
• Default to text/html if a view is defined
• allow returning text/plain

similar to rendering content negotiation:

• readable body formats can be configured globally (json/form encoded/plain text/multipart/etc)
• body formats are mapped to parsers that can create an object from them
• body validation happens independently after the pipeline receives the request body parsing result

• Determine what object type is most appropriate to return (e.g. Buffer, etc)
• Add an HttpBodyParser implementation that supports receiving the application/octet-stream MIME type
• Ensure that the new parser works with files transmitted using multipart/form-data requests

depends on #24

• add @ErrorHandler method decorator
• decorated method is invoked when an error is caught in DefaultRouteExecutor

Add test coverage for the following items:

• DecoratorModelValidator
• primitive type validators
• UuidTypeValidator

We should not be doing any modification of the data coming out of data clients from within the data client libraries. This is causing problems with JSON blob columns that use UUID style keys, since the data mapper is trying to convert them to camelCase.

• building on #13, add an option to transform the data before constructing the target model
• use existing @Json decorator to optionally ignore transforms for JSON fields

• @QueryParam
• @PathParam
• @RequestBody

dependent on #34

• add observable for broadcasting telemetry events

@dandi/core

• app startup/bootstrap events
• app errors

@dandi/mvc

• routing startup events
• request lifecycle

@dandi/mvc-hal

• embedding events

• @QueryParam should be treated as optional

• mvc with express, models, model builder, hal, etc
• postgres db (run postgres in docker container)
• firebase auth
• minimal angular frontend
• pseduo-fake config implementation

Similar to @RequestBody(), @QueryParam(), and @PathParam(), @RequestHeader() will allow a header value to be injected into a method or class constructor.

• Accept HttpHeader value as an argument
• Inject parsed header value from HttpRequestHeaders

• exposes the specified providers to the resolver when resolving dependencies of decorated class constructor or method
• can define providers statically or with a function

• create a Resolver implementation based on existing logic in Container
• refactor resolve and resolveInContext to inject/injectInContext, with additional injectSingle and injectMulti variants
• rename Container -> DandiApplication
• DandiApplication will retain the startup/bootstrapping logic